c989f465ac6dde003a19a08829ca471ace9d9d19e3e4f00cab3b752ea78dd928 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c989f465ac6dde003a19a08829ca471ace9d9d19e3e4f00cab3b752ea78dd928
Size

91KB
MD5

9ebbc8302edd810ebf9bda16999f26c4
SHA1

0f449ee63a4b3b99558a3f102d7d47771530b9fa
SHA256

c989f465ac6dde003a19a08829ca471ace9d9d19e3e4f00cab3b752ea78dd928
SHA512

0f8b8b790d0487091cf3b3333f0bbe638ff27b68ff49de600e8a68efa158ac58d2d619297e172ae093f90f380813fd0a9a5e63c5ff5870dc5efe336ba1229aec
SSDEEP

1536:pA499APRXr4aXqd4N5+Jd6JST1g9jqcn3HfXFgIe:poh4suqKd6kT1Obn3PFgt

Score

N/A

Malware Config

Signatures

Files

c989f465ac6dde003a19a08829ca471ace9d9d19e3e4f00cab3b752ea78dd928
.exe windows x86

fcb4f59b201f2af72284a9ab01715693

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryDosDeviceA
QueryInformationJobObject
ReplaceFileA
ZombifyActCtx
SetConsoleKeyShortcuts
IsBadStringPtrA
AllocateUserPhysicalPages
GetTempPathW
GetFullPathNameW
CloseProfileUserMapping
SetConsoleHardwareState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE